http://dpaste.com/36PTMS0.txt
Here is relevant config
[domain/LDAP]
chpass_provider = krb5
access_provider = ldap
id_provider = ldap
...
auth_provider = proxy
proxy_pam_target = securid
..
There is no sudo_* in here
sudo -s works if I use the auth provider, which is 2FA. So it seems like sudo auth follows whatever auth_provider is set to?
Can I have ssh login with proxy as auth provider and sudo login with ldap as auth provider?
I know both ssh and sudo login works with ldap and krb5, but I need to have the ssh login with 2FA in my env.
Thanks for your help
--
Asif Iqbal
PGP Key: 0xE62693C5 KeyServer:
pgp.mit.eduA: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?